Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8574b00513985b99d716f5f72260a484c2c781af49bcd24da0a94d3926374eb9
-
Size
4.2MB
-
Sample
230210-j7ze4scf23
-
MD5
db24152012b6e4a2fdb8fea97c570cf0
-
SHA1
21fcc7fb0d794a541ae0c72371366016d4aeebf9
-
SHA256
8574b00513985b99d716f5f72260a484c2c781af49bcd24da0a94d3926374eb9
-
SHA512
07a61d4ff7db759f349931735a49f94979b2f4fedf46ccdac54499478a8f0843d2ef4a72209fad68d490d479b1ebdaea1a8b7419cad59cd79e7ca15c85bf928c
-
SSDEEP
98304:F7x+bmWuh0xtZR3jppzMVwVah9Typ7oz4zG4bT:ubo0v3jppEwVc9up7g4h
Static task
static1
Malware Config
Targets
-
-
Target
8574b00513985b99d716f5f72260a484c2c781af49bcd24da0a94d3926374eb9
-
Size
4.2MB
-
MD5
db24152012b6e4a2fdb8fea97c570cf0
-
SHA1
21fcc7fb0d794a541ae0c72371366016d4aeebf9
-
SHA256
8574b00513985b99d716f5f72260a484c2c781af49bcd24da0a94d3926374eb9
-
SHA512
07a61d4ff7db759f349931735a49f94979b2f4fedf46ccdac54499478a8f0843d2ef4a72209fad68d490d479b1ebdaea1a8b7419cad59cd79e7ca15c85bf928c
-
SSDEEP
98304:F7x+bmWuh0xtZR3jppzMVwVah9Typ7oz4zG4bT:ubo0v3jppEwVc9up7g4h
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-